BSD-3-Clause and GPL-2.0-only and GPL-2.0-or-later and LGPL-2.1-or-later and MIT

Maintainer

-

Download size

130.20 KB

Installed size

24.95 KB

QEMU is an extremely well-performing CPU emulator that allows you to
choose between simulating an entire system and running userspace
binaries for different architectures under your native operating
system. It currently emulates x86, ARM, PowerPC and SPARC CPUs as well
as PC and PowerMac systems.
This sub-package contains a module for accessing network-based image files
over a network connection from qemu-img tool and QEMU system emulation.

2018-05-14 - brogers@suse.com
- Spectre v4 vulnerability mitigation support for KVM guests.
High level description of vulnerability: Systems with microprocessors
utilizing speculative execution and speculative execution of memory
reads before the addresses of all prior memory writes are known may
allow unauthorized disclosure of information to an attacker with
local user access via a side-channel analysis.
This patch permits the new x86 cpu feature flag named "ssbd" to be
presented to the guest, given that the host has this feature, and
KVM exposes it to the guest as well. As this change also relies on
the same MSR infrastructure used for the "spec-ctrl" feature now is
a good time to remove the temporary patch used to help ensure a
smooth transition to spec-ctrl support regardless of KVM support.
For this feature to be enabled, via adding it to the qemu commandline
(eg: -cpu <model>,+spec-ctrl,+ssbd), so the guest OS can take advantage
of the feature, spec-ctrl and ssbd support is also required in the host.
(CVE-2018-3639 bsc#1092885)
* Patches dropped:
0094-i386-Compensate-for-KVM-SPEC_CTRL-f.patch
* Patches added:
0094-i386-Add-bit-2-of-SPEC_CTRL-MSR-sup.patch
- Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE12-SP3